logo

CVE-2024-26169 - Microsoft Windows Error Reporting Service Improper Privilege Management Vulnerability

CVE-2024-26169

Microsoft | Windows

  • Date Added:
  • 2024-06-13
  • Due Date:
  • 2024-07-04
Vulnerability Name

Microsoft Windows Error Reporting Service Improper Privilege Management Vulnerability

Description

Microsoft Windows Error Reporting Service contains an improper privilege management vulnerability that allows a local attacker with user permissions to gain SYSTEM privileges.

Known To Be Used in Ransomware Campaigns?

Known

Action

Apply updates per vendor instructions or discontinue use of the product if updates are unavailable.

Additional Notes
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-26169; https://nvd.nist.gov/vuln/detail/CVE-2024-26169
Related News Articles

Free security scan for your website